CVE-2019-5544

OpenSLP as used in ESXi and the Horizon DaaS appliances has a heap overwrite issue. VMware has evaluated the severity of this issue to be in the...

Basic Information

CVE State: PUBLISHED
Reserved Date: January 07, 2019
Published Date: December 06, 2019
Last Updated: February 07, 2025
Vendor: n/a
Product: ESXi and Horizon DaaS
Description: OpenSLP as used in ESXi and the Horizon DaaS appliances has a heap overwrite issue. VMware has evaluated the severity of this issue to be in the Critical severity range with a maximum CVSSv3 base score of 9.8.

CVSS Scores

SSVC Information

Exploitation: active
Automatable: Yes
Technical Impact: total

Exploit Status

Exploited in the Wild: Yes (added 2021-11-03 00:00:00 UTC) Source
Proof of Concept Available: Yes (added 2020-12-01 13:49:26 UTC) Source
Used in Malware: Yes (added 2021-11-03 00:00:00 UTC) Source

References

http://www.vmware.com/security/advisories/VMSA-2019-0022.html http://www.openwall.com/lists/oss-security/2019/12/10/2 http://www.openwall.com/lists/oss-security/2019/12/11/2 https://access.redhat.com/errata/RHSA-2019:4240 https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZPXXJZLPLAQULBCJVI5NNWZ3PGWXGXWG/ https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DA3LYAJ2NRKMOZLZOQNDJ5TNQRFMWGHF/ https://access.redhat.com/errata/RHSA-2020:0199 https://security.gentoo.org/glsa/202005-12

Known Exploited Vulnerability Information

Source	Added Date
CISA	2021-11-03 00:00:00 UTC

Potential Proof of Concepts

Warning: These PoCs have not been tested and could contain malware. Use at your own risk.

HynekPetrak/CVE-2019-5544_CVE-2020-3992

Type: github • Created: 2020-12-01 13:49:26 UTC • Stars: 48

Python / scapy module implementing SRVLOC/SLP protocol and scans for enabled OpenSLP services.